Nathan Davison

**Name of the Vulnerable Software and Affected Versions** Cloud Foundry Routing Release versions prior to 0.197.0 **Description** The issue allows malicious clients to send invalid headers, causing caching layers to reject subsequent legitimate clients trying to access the app. This is a cache poisoning denial-of-service (DoS) issue. **Recommendations** For versions prior to 0.197.0, update to version 0.197.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the caching layers to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: HAProxy versions through 1.8.14 Description: An out-of-bounds read issue in the `dns validate dns response` function in `dns.c` allows remote attackers to potentially read unauthorized data from the stack or past the end of the buffer, depending on the `accepted payload size` value. This could lead to unauthorized access to protected information. Recommendations: For HAProxy versions through 1.8.14, update to a version that includes a fix for the out-of-bounds read issue in the `dns validate dns response` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.